CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. Come to CPUG CON 2008 EUROPE in Switzerland on September 8th - 9th!
    Two days full of technical content for Check Point administrators in the beautiful Swiss Alps!
    We already have 52 attendees signed up from 14 countries!
2. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 8/25, 10/6, 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8, 7/6, 8/3, 9/7.
3. Corrent S3500 SecureXL Turbocards For Sale - Last Six Remaining - Get Your Spares!
4. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > Miscellaneous
Reload this Page Inconsistent Registry Contents
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2005-08-13
BarryStiefel BarryStiefel is offline
Administrator
  
Join Date: 2005-08-11
Location: San Francisco, CA
Posts: 547
Rep Power: 10
BarryStiefel has disabled reputation
Default Inconsistent Registry Contents
Inconsistent Registry Contents



FireWall-1 binds to the TCP/IP stack and NIC drivers. If FireWall-1 does not successfully bind to the interfaces or something is done which changes how things are bound (i.e. installing a new NT Service Pack), your networking configuration can get corrupted. Unfortunately, there is no pleasant way out of this situation. Here are the steps you need to follow:
  1. Disable the "Check Point FireWall-1" Service and the "FireWall-1" and "FireWall-1 Loader" Devices. Reboot.
  2. If you have made any changes to the routing table, make a list of your "persistant" routes (e.g. route -p print > routes.txt). Another, albeit more dangerous way to do this is to use regedt32 to save the key HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesT cpipParametersPersistentRoutes (and values beneath).
  3. Remove all adapters and protocols from the Windows NT Networking configuration. Reboot.
  4. Re-install and configure proper NIC drivers and TCP/IP. Also make sure SNMP Service is installed. Reboot
  5. Verify 'ipconfig /all' returns correct information.
  6. Re-install any service packs and hotfixes you previously installed. Reboot.
  7. If you use address translation, back up the %FWDIR%statelocal.arp as the next step will delete this file.
  8. Re-install FireWall-1 version 3.0b or 4.0SP1 (or whatever "base") as an "upgrade," which will recognize and use existing configuration. Do not reboot.
  9. Re-install whatever patch or FireWall-1 service pack you use (i.e. 3064, 3072, SP8). Reboot.
  10. Verify 'ipconfig /all' returns correct information. If necessary, re-add your persistant routes (which you should have a list of from above or the actual registry keys). Verify network connectivity, etc.
  11. If necessary, copy-back backed-up local.arp file into the state directory.
  12. Re-install the security policy.

An alternate method for steps 1-6 above (suggested to me by Paul Culmsee):
  1. Remove FireWall-1
  2. Copy tcpip.sys from your latest Service Pack (run ServicePackFile.exe /x to do this) or from your Windows NT CD Rom.
  3. Reboot
  4. Proceed to step 7 above.

-- PhoneBoy - 11 Jan 2004

FAQForm FAQs.Class: TroubleshootingFAQs FAQs.OS: OsWindows FAQs.Version:
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 03:50.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0